Ticket #1300 (assigned defect)

Opened 8 years ago

Last modified 8 years ago

configure the firewall services module in IPP core

Reported by: jhoblitt Owned by: cindy
Priority: normal Milestone:
Component: hardware Version:
Severity: normal Keywords:
Cc:

Description

We need to establish two vlans between the sup module and the fw module. One vlan is the "outside" and the other being the "inside" vlan. Routing needs to be configured being the sup the fw mod via the "outside" vlan. NAT needs to be configured on the "inside" vlan for the PSPS. When it become time for IPP wave #4, another seperate "inside" vlan needs to be created so all IPP nodes can be moved over to NAT. I've had trouble in the past getting this configuration to work and at one point Cisco suggested the fwsvc mode might be bad and need to be replaced. I never did this as I've never had time/resources to setup a proper test.

Change History

Changed 8 years ago by jhoblitt

Note: sounds like IOS may now support NAT directly

Changed 8 years ago by eugene

  • owner changed from jhoblitt to cindy
  • status changed from new to assigned

this needs to be justified (to EAM at least) before being implemented.
the gains are not clear to me compared with the risks of the modifications.

Note: See TracTickets for help on using tickets.